McAfee Threat Center

Content

DAT Readme

Download the latest anti virus definitions for McAfee® VirusScan®. Ensure your McAfee® product contains the most up-to-date detection and prevention.
http://www.mcafee.com/apps/downloads/security_updates/dat.asp

DAT Version	4367
DAT Release Date	06/16/2004
Threats Detected	92006
New Detections	95
Enhanced Detections	245

Enhanced detections are those that have been modified for this release. Detections are enhanced to cover new variants, optimize performance, and correct incorrect identifications.

Noteworthy threats are those that had an Avert risk assessment of Low-Profiled, Medium, Medium-On-Watch, High, or High-Outbreak at the time of DAT release.

Noteworthy Threats:

Name	Corporate Risk Assessment	Home Risk Assessment
JS/Exploit-DialogArg.b	Low-Profiled	Low-Profiled
W32/Sober.h	Low-Profiled	Low-Profiled

New Detections:

Program (9)

(1)

Dialer (3)

Generic (1)

Dialer-RAS.df.gen

Joke (1)

Malware Tool (1)

Spyware (2)

Spyware-NetReplicat

Spyware-CatchaSneak

Trojan (61)

(2)

Application extension (2)

Downloader-LG.dll

BackDoor-CFO.dll

Client (1)

BackDoor-ASB.cli

Demonstration (1)

Exploit-HCPRemoteExe.demo

Downloader (9)

Dialer-205.dldr

StartPage-BT.dldr

Dropper (5)

Downloader-LJ.dr

BackDoor-AZG.dr

BackDoor-ASB.dr

E-mail (1)

Exploit (4)

Exploit-SMBAdde

JS/Exploit-DialogArg.b

Exploit-MhtRedir!chm

JS/Exploit-DialogArg.a

Heuristic (1)

Malware Tool (2)

Password Stealer (1)

PWS-Etry

Remote Access (10)

JS/BackDoor-BCB

Script (9)

Bat/klw8

VBS/Naba

Del-454

StartPage (5)

Vulnerability (1)

Win32 (7)

KillYah

HaScreen

CeCinta

SonOfArt

Generic QHosts.a

Parpa

Virus (23)

(1)

Cascade.1701.bo

Damaged (2)

Linux/Debilove.dam

Damaged Worm (1)

W32/Sdbot.worm.dam

Email (3)

W32/Sober.g@MM!zip

Email Generic (1)

W32/Zafi.gen.b@MM

Generic (1)

Generic Worm (1)

W32/Nodab.worm.gen

Internet Relay Chat Worm (2)

W32/Scanbot.worm!irc

W32/Plesa.worm!irc

Linux (1)

Linux/Debilove.10714

Script (2)

VBS/Mill

VbScript (1)

VBS/Pub

Win32 (3)

W32/Mydoom.k.eml!exe

Worm (4)

Unix/Siback.worm

Enhanced Detections:

Internet Worm (1)

Win32 (1)

Program (23)

(1)

- (2)

Proxy-Daemonize

RemoteProcessLaunch

Adware (8)

IPSentry

Adware-TopMoxie

Adware-BetterInet

Adware-PurityScan

Application extension (1)

Dialer-Generic.dll

Dialer (1)

Dialer-Generic.b

Downloader (1)

Adware-Rfwnad.dldr

Exploit (1)

Generic (1)

Keylog-Perfect.gen

Malware Tool (2)

Remote Access (1)

Spyware (1)

Win32 (3)

IMIServer.download

AdwareDropper-B

PSKill

Trojan (84)

(3)

Generic BackDoor.d

Generic Keylogger

Application extension (3)

BackDoor-AXJ.dll

Downloader-DA.dll

Configurator (1)

MultiDropper-FQ.cfg

Demonstration (1)

JS/Exploit-DialogArg.demo

DOS (1)

Downloader (5)

PWS-LegMir.dldr

Dropper (5)

MultiDropper-GK

VBS/Inor

MultiDropper-FQ

Exploit (4)

JS/Exploit-DialogArg

Exploit-MhtRedir.gen

Generic (6)

Exploit-DcomRpc.gen

VBS/IEstart.gen.f

JS/IEstart.gen.d

PWS-Bancban.gen.b

BackDoor-ASB.gen

Spy-Tofger.gen.b

Heuristic (1)

HTML (2)

Internet Relay Chat (3)

Java Applet (1)

JavaScript (1)

Macro (1)

Malware Tool (1)

Password (9)

PWS-Moneykeeper

PWS-WebMoney.gen

Password Stealer (1)

Remote Access (9)

Script (9)

Univ.script/99b

Univ.script/99a

JS/AdClicker-AG

New CardStealer

VBS/ShareEnable

Bat/Sepy

Server (1)

BackDoor-ARR.svr

StartPage (3)

Win32 (13)

Generic Downloader.a

Generic BackDoor.b

Generic BackDoor.f

LogOff

Virus (137)

(73)

Cascade.1701.bm

Cascade.1701.bk

Cascade.1701.bj

Cascade.1701.bi

Cascade.1701.bh

Cascade.1701.bf

Cascade.1701.be

Cascade.1701.bb

Cascade.1701.az

Cascade.1701.ay

Cascade.1701.Yap.i

Cascade.1701.aw

Cascade.1701.av

Cascade.1701.au

Cascade.1701.ar

Cascade.1701.aq

Cascade.1701.ap

Cascade.1701.Yap.h

Cascade.1701.ao

Cascade.1701.an

Cascade.1701.Yap.g

Cascade.1701.am

Cascade.1701.al

Cascade.1701.ak

Cascade.1701.aj

Cascade.1701.Yap.f

Cascade.1701.Yap.e

Cascade.1701.ai

Cascade.1701.ah

Cascade.1701.Yap.d

Cascade.1701.Yap.c

Cascade.1701.Yap.b

Cascade.1701.bd

Cascade.1701.bc

Cascade.1701.ba

Cascade.1701.at

Cascade.1701.ag

Cascade.1701.af

Cascade.1701.ae

Cascade.1701.ad

Cascade.1701.ac

Cascade.1701.ab

Cascade.1701.aa

Cascade.1701.Yap.a

Cascade.1701.as

Cascade.1701.bl

Cascade.1701.bg

Application extension (1)

Application extension Generi (1)

W32/Bagle.dll.gen

Damaged (1)

Anti-Pascal.dam

Damaged Worm (2)

W32/Spybot.worm.dam

W32/Gaobot.worm.dam

Dropper (3)

Cascade.1701.q.dr

E-mail (4)

W32/Mydoom.b@MM

W32/Mydoom.h@MM

W32/Mydoom.e@MM

W32/Mydoom.k@MM

E-mail worm (4)

W32/Mydoom.g@MM

W32/Mydoom.f@MM

W32/Bagle.aa@MM

Email (7)

W32/Mydoom.i@MM

W32/Mydoom.a@MM

W32/Mydoom.j@MM

W32/Sober.d@MM!zip

W32/Sober.e@MM!zip

W32/Mydoom.l@MM

File Infector (2)

Generic

Generic (1)

Generic Worm (10)

W32/Gaobot.worm.gen.g

W32/Gaobot.worm.gen.f

W32/Gaobot.worm.gen.e

W32/Gaobot.worm.gen.l

W32/Spybot.worm.gen.g

W32/Sdbot.worm.gen.o

W32/Sdbot.worm.gen.i

W32/Randbot.worm.gen.d

W32/Randbot.worm.gen.b

W32/Gaobot.worm.gen.h

HTML document (1)

Intended (1)

VBS/Redlof.intd

Internet Relay Chat (1)

Internet Worm (3)

W32/Netspree.worm

W32/Gaobot.worm.ali

W32/Gaobot.worm.gen.q

Macro (4)

W97M/Coke.22231.a

Open Share Worm (1)

W32/Dedler.worm.gen

Script (3)

Bat/flm

JS/Malex

VBS/Uxor

Universal (3)

Univ/j

VbScript (1)

Win32 (6)

W32/Mydoom.a.eml!exe

W32/Mydoom.g.eml!exe

W32/Bagle.ab!vbs

Win9x (1)

Worm (3)

W32/Fesber.worm

W32/Dedler.worm